Common vulnerabilities and Exposures (CVE)

Skip to main content

Required CVE Record Information

Description

A maliciously crafted CATPART file, when parsed in CC5Dll.dll and ASMBASE228A.dll through Autodesk AutoCAD, may force an Out-of-Bounds Write vulnerability. A malicious actor may leverage this vulnerability to cause a crash, cause data corruption, or execute arbitrary code in the context of the current process.

CVSS 1 Total

Learn more
ScoreSeverityVersionVector String
7.8HIGH3.1CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Product Status

Learn more

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unknown

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Versions 5 Total

Default Status: unaffected

affected

  • affected from 2025 before 2025.0.1 
  • affected from 2024 before 2024.1.3 
  • affected from 2023 before 2023.1.5 
  • affected from 2022 before 2022.1.4 
  • affected from 2021 before 2021.1.4 

Updated:

This container includes required additional information provided by the CVE Program for this vulnerability.

Authorized Data Publishers

Learn more